Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/174A0E6EF3EC11EF8C88F080762E951A.roa
File: 174A0E6EF3EC11EF8C88F080762E951A.roa (raw, json)
Hash identifier: bLiliEGmsJqCQSXNZbQYgUmpufcx2xbZVbLlbHzuKQ0=
Subject key identifier: 34:F8:18:D3:A3:C2:DA:D2:76:05:83:F2:46:E1:43:CC:3A:3A:B1:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016097
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/174A0E6EF3EC11EF8C88F080762E951A.roa
Signing time: Wed 26 Feb 2025 02:48:00 +0000
ROA not before: Wed 26 Feb 2025 02:47:56 +0000
ROA not after: Thu 19 Feb 2026 02:47:56 +0000
asID: 984
IP address blocks: 154.203.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90263 (0x16097)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 02:47:56 2025 GMT
Not After : Feb 19 02:47:56 2026 GMT
Subject: CN=67be80e0-a07a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:80:49:b7:e8:56:82:31:64:21:38:0e:15:61:
bb:b7:97:ac:b8:d5:4e:be:65:40:f6:0a:4f:6c:2f:
19:08:45:ad:f0:37:7b:ae:8d:ac:10:f1:90:6a:33:
2a:15:f4:be:2f:d9:0b:1e:6e:5e:d6:da:19:11:11:
ec:9d:39:aa:73:ff:45:39:e0:32:c8:87:20:fc:82:
92:9e:78:01:0e:53:32:34:91:c0:3a:6e:ba:b8:13:
53:a2:06:08:2b:0b:90:0d:32:63:a4:8e:10:b2:67:
c6:63:66:70:95:6e:af:58:1f:12:92:7b:aa:13:d2:
38:9b:3d:68:66:b0:40:e4:d3:10:bb:19:42:30:48:
07:9c:4d:68:b7:3a:f1:4b:0d:23:3a:72:3d:07:99:
76:a4:1c:55:23:92:dc:d9:6f:a9:01:1a:9d:ea:5e:
74:b5:dd:68:6e:8e:d6:27:19:0f:7b:e5:cc:2a:0b:
da:e7:e8:ec:58:b5:c3:64:25:ad:4e:62:5f:79:5c:
65:fb:6f:d8:4e:fa:6a:4b:6d:6f:4c:74:b9:c5:02:
ea:59:f7:b2:48:ce:04:dc:f8:ef:83:d1:9a:27:c2:
2f:6b:6f:1c:16:f4:4a:fe:7e:14:07:3c:a0:10:f3:
6c:29:42:2f:5b:68:9a:18:58:a8:ca:02:6d:e7:db:
d4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:F8:18:D3:A3:C2:DA:D2:76:05:83:F2:46:E1:43:CC:3A:3A:B1:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/174A0E6EF3EC11EF8C88F080762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.99.0/24
Signature Algorithm: sha256WithRSAEncryption
29:63:ee:fd:11:6c:7a:1f:7b:fa:a9:86:3b:16:c7:3b:89:1e:
3e:7b:6f:7c:2d:c8:14:a2:d3:e0:b6:04:8b:6c:5b:e4:8a:c8:
33:88:be:31:ac:db:d5:5f:e1:d3:2d:03:b2:e6:8a:5c:2e:98:
a2:99:1f:6f:7d:63:97:72:24:97:71:95:51:19:29:7b:b0:c4:
14:ee:7c:e2:98:ec:3a:d9:9c:9a:7e:f1:3b:48:86:4f:a0:b9:
09:69:b2:a2:7d:ed:e3:25:10:3a:b3:a5:52:78:ce:7d:94:44:
5b:98:18:be:41:bf:4b:d8:d1:52:48:53:1a:fa:82:59:ed:3d:
b8:6a:c4:f4:5b:14:25:6f:bb:85:65:a9:a6:a1:26:47:fc:bd:
54:50:eb:83:63:f4:77:58:a9:a8:dc:a7:6c:14:d8:e0:79:c5:
ac:6a:cb:f7:2b:35:a0:7e:39:6c:20:73:03:4d:14:84:7b:10:
1e:67:33:bf:d5:eb:95:37:4d:87:7c:00:d4:1a:8b:99:fb:dd:
ba:4b:af:19:c5:a7:4e:2b:f9:3e:80:1f:8f:68:2f:82:58:8c:
e5:3f:a4:a2:92:4f:0e:b2:fe:46:5d:35:6d:d8:cc:64:d7:74:
4f:c8:e3:cb:fd:6d:8b:0a:43:97:07:28:69:db:b5:4e:a9:ff:
6c:52:b7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:13:30 2025 by rpki-client